Wesnoth: >> Wesnoth >> 1.1.14 Security Vulnerabilities
The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document.
CVSS Score
4.3
EPSS Score
0.022
Published
2009-03-12
The read_game_map function in src/terrain_translation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a map with a large (1) width or (2) height.
CVSS Score
5.0
EPSS Score
0.013
Published
2009-03-12
Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors.
CVSS Score
9.0
EPSS Score
0.013
Published
2007-12-01